Fedora

DATE	CVE	VULNERABILITY TITLE	RISK
2021-04-22	CVE-2021-0232	Authentication Bypass by Spoofing vulnerability in multiple products An authentication bypass vulnerability in the Juniper Networks Paragon Active Assurance Control Center may allow an attacker with specific information about the deployment to mimic an already registered Test Agent and access its configuration including associated inventory details. network high complexity juniper fedoraproject CWE-290	7.4
2021-04-22	CVE-2021-23133	Race Condition vulnerability in multiple products A race condition in Linux kernel SCTP sockets (net/sctp/socket.c) before 5.12-rc8 can lead to kernel privilege escalation from the context of a network service or an unprivileged process. local high complexity linux fedoraproject debian netapp broadcom CWE-362	7.0
2021-04-21	CVE-2021-28965	The REXML gem before 3.2.5 in Ruby before 2.6.7, 2.7.x before 2.7.3, and 3.x before 3.0.1 does not properly address XML round-trip issues. network low complexity ruby-lang fedoraproject	7.5
2021-04-20	CVE-2021-29155	Out-of-bounds Read vulnerability in multiple products An issue was discovered in the Linux kernel through 5.11.x. local low complexity linux fedoraproject debian CWE-125	5.5
2021-04-19	CVE-2021-20208	Improper Privilege Management vulnerability in multiple products A flaw was found in cifs-utils in versions before 6.13. local high complexity samba redhat fedoraproject CWE-269	6.1
2021-04-19	CVE-2021-3505	A flaw was found in libtpms in versions before 0.8.0. local low complexity libtpms-project redhat fedoraproject	5.5
2021-04-19	CVE-2021-29458	Exiv2 is a command-line utility and C++ library for reading, writing, deleting, and modifying the metadata of image files. local low complexity exiv2 fedoraproject debian	5.5
2021-04-19	CVE-2021-29457	Exiv2 is a command-line utility and C++ library for reading, writing, deleting, and modifying the metadata of image files. local low complexity exiv2 fedoraproject debian	7.8
2021-04-15	CVE-2021-20288	Improper Authentication vulnerability in multiple products An authentication flaw was found in ceph in versions before 14.2.20. network low complexity linuxfoundation redhat fedoraproject debian CWE-287	7.2
2021-04-14	CVE-2021-28484	Infinite Loop vulnerability in multiple products An issue was discovered in the /api/connector endpoint handler in Yubico yubihsm-connector before 3.0.1 (in YubiHSM SDK before 2021.04). network low complexity yubico fedoraproject CWE-835	7.5